JOB DETAILS

Data Protection & Governance Specialist

CompanyTalent-360.me
LocationRiyadh
Work ModeOn Site
PostedApril 26, 2026
About The Company
Wind Integrated Solutions (Wind-IS® - Oracle L5 Partner) is a customer-focused solution provider that provides technology services, business automation, and business digitalization. Wind-IS® is dedicated to develop technological horizons in the Middle East & Africa. It has been assisting many top firms in realizing their prospective information technology heights ever since. This is being achieved by offering state-of-the-art innovative Information Technology solutions, in addition to consultancy, training, and professional after-sale services. Wind Integrated Solutions (Wind-IS®) prides itself for a diversified experience and a long and prestigious track record of customer references in all business sectors. Wind-IS® has a proven track record of undertaking large scale projects in various sectors, specially government sector throughout these projects Wind-IS® has always insisted on providing the highest level consultancy standards. Wind-IS® calls on the expertise of a number of experienced Consultants with a number of years’ experience and the series of successful projects adhering to proven implementation methodology.
About the Role

About Us

SiFi is a rapidly growing B2B Fin-Tech company transforming expense management for businesses in Saudi Arabia. As a licensed EMI from the Saudi Central Bank, we empower companies with innovative tools to simplify finance management.

Position Overview

The Data Protection & Governance Specialist is responsible for establishing and managing the organization’s data protection, privacy, and data governance program. The role ensures compliance with the Saudi Personal Data Protection Law (PDPL) and National Data Management Office (NDMO) requirements.

The role coordinates the development of governance frameworks, policies, and operational practices that ensure personal and organizational data are managed securely, responsibly, and in accordance with regulatory expectations.

The position works closely with cybersecurity, legal, compliance, technology, and business teams to embed data governance and privacy practices across the organization.

Key Responsibilities

Personal Data Protection (PDPL)

• Establish and maintain the organization’s privacy governance framework.

• Develop and maintain data protection policies, procedures, and standards.

• Define data privacy-related KPIs and monitor them periodically.

• Lead and coordinate Privacy Impact Assessments (PIA / DPIA) for systems and initiatives involving personal data.

• Maintain records of personal data processing activities.

• Ensure processes exist to manage data subject rights requests (access, correction,deletion).

• Support incident response processes related to personal data breaches.

• Provide guidance to internal teams regarding proper handling of personal data.

• Support regulatory alignment with the Saudi Personal Data Protection Law (PDPL).

Data Governance & NDMO Compliance

• Lead the implementation of a data governance framework aligned with NDMO standards.

• Establish and maintain the organization’s data classification framework.

• Define and coordinate data ownership and stewardship models across the organization.

• Develop policies governing data lifecycle management, including retention and disposal.

• Support implementation of data quality management and metadata standards.

• Maintain data inventory and data asset management documentation.

• Coordinate NDMO compliance assessments and remediation activities.

Governance Coordination & Awareness

• Promote awareness of data protection and data governance requirements across theorganization.

• Provide guidance to business units on proper data handling and classification.

• Support the development of training programs related to data protection and governance.

• Coordinate with Legal, Compliance, Risk, and Technology teams to ensure regulatory alignment.

Bachelor’s degree in Cybersecurity, Information Security, Information Systems, Law, or related field.

- 2–4 years of experience in data protection, privacy, data governance, or cybersecurity governance roles.

- Experience working in regulated environments such as financial services or fintech.

- Familiarity with PDPL, NDMO, and regulatory governance frameworks is preferred.

- Saudi Nationality

Preferred Certifications

• CIPP/E or CIPP/M – Certified Information Privacy Professional

• ISO 27001 Foundation or Lead Implementer

• Certified Data Management Professional (CDMP)

Key Skills

- Strong understanding of data protection and privacy principles.

- Knowledge of data governance frameworks and regulatory compliance.

- Ability to develop policies and governance documentation.

- Strong stakeholder coordination and communication skills.

- Strong analytical and organizational capabilities.

Key Skills
Data protectionData governancePrivacy complianceRegulatory compliancePolicy developmentPrivacy impact assessmentsData classificationData lifecycle managementStakeholder coordinationCommunication skillsAnalytical capabilitiesOrganizational capabilitiesCybersecurity governanceRisk management
Categories
Data & AnalyticsFinance & AccountingLegalSecurity & SafetyTechnology
Job Information
📋Core Responsibilities
The specialist will establish and manage the organization's data protection, privacy, and data governance programs to ensure compliance with PDPL and NDMO requirements. They will coordinate governance frameworks, policies, and operational practices while collaborating with cross-functional teams to embed privacy practices.
📋Job Type
full time
📊Experience Level
2-5
💼Company Size
49
📊Visa Sponsorship
No
💼Language
English
🏢Working Hours
40 hours
Apply Now →

You'll be redirected to
the company's application page